Resource Center
Resource Center
Expert Insights and Tools for Fortifying Your Cyber Defense
Elevate your cybersecurity expertise and strengthen the security posture of your organization with expert guidance, industry best practices, and research insights from Enterprotect.
Critical Elevation of Privilege Vulnerability Discovered in Microsoft Outlook
Microsoft Outlook has a critical elevation of privilege (EoP) vulnerability that allows threat actors to steal credentials and gain access to Windows environments. This advisory provides details and recommendations to mitigate the risk.
Critical Unauthorized Remote Execution Code Vulnerability Found in Fortinet FortiOS and FortiProxy
Enterprotect recommends immediate action to address a critical security flaw found in Fortinet's FortiOS and FortiProxy products. The vulnerability allows an unauthenticated attacker to execute commands on the device and perform a denial-of-service (DoS) attack on the graphical user interface (GUI) through specially crafted HTTP requests.
Malicious Packages Found in Python Package Index (PyPI)
This threat advisory by Enterprotect highlights the discovery of malicious packages on the Python Package Index that can steal sensitive data from developers. The post provides technical details on the threat, outlines the exposure and risk, and offers recommendations on how to protect yourself and your organization. The advisory includes essential tips for preventing supply chain attacks and staying up to date with package repository updates.
MortalKombat Ransomware Campaign Targets US Systems
This threat advisory outlines the risks and exposure of the MortalKombat ransomware campaign, which is targeting systems in the United States. The campaign uses a variant of the Xorist commodity ransomware and Laplas clipper to conduct financial fraud, posing a significant threat to organizations. The post provides recommendations on mitigating the risks and reducing the impact of the campaign.
The Return of Medusa Botnet as a Mirai-Based Variant with Ransomware Sting
Learn about the newly discovered Medusa botnet variant featuring a ransomware module and Telnet brute-forcer. Discover its attack capabilities and the recommended actions to protect your system.
ESXiArgs Ransomware Attacks Targeting Vulnerable VMware ESXi Servers
Stay protected from ESXiArgs ransomware attacks with our latest threat advisory. Learn about the vulnerability and follow our recommended measures to upgrade your vSphere components and secure your VMware ESXi servers.
Google Advertisements Promote Antivirus-Evading 'Virtualized' Malware
Google advertisements promoting antivirus-evading 'virtualized' malware. Discover the exposure and risk and get expert recommendations on how to protect yourself from this dangerous cyber attack.
Critical Remote Code Execution Vulnerability in Atlassian's Jira Service Management Server and Data Center
Learn about the critical remote code execution vulnerability in Atlassian's Jira Service Management Server and Data Center. Get information on the exposure and risk, as well as recommendations to secure your systems from the potential harm. Stay informed with Enterprotect's threat advisory.
Critical Vulnerability in QNAP Devices Allowing Remote Attackers to Inject Malicious Code
Stay protected against the recently discovered critical vulnerability in QNAP devices with our Threat Advisory. Read about the SQL injection flaw, the potential risk, and the recommended steps to secure your data stored on QNAP NAS devices. Don't wait - upgrade your devices now to prevent malicious code injection.
Unpatched VMware vRealize Log Insight Appliances at Risk of Unauthorized Remote Code Execution
Cybersecurity firm Enterprotect warns VMware vRealize Log Insight users of a newly discovered exploit targeting a vulnerability chain that allows remote code execution without authentication. Learn about the exposure and risk, and the recommended steps to secure your system.
Vulnerability in Cisco Small Business RV016, RV042, RV042G, and RV082 Routers Exposed to Remote Command Execution
Enterprotect is issuing a threat advisory on a critical vulnerability in Cisco Small Business RV016, RV042, RV042G, and RV082 routers. Over 19,000 end-of-life Cisco VPN routers are exposed to this exploit, which allows attackers to bypass authentication and execute arbitrary commands on the underlying operating system. Learn about the threat, exposure, and recommended actions to secure your devices from attack in this detailed advisory.
Thousands of Norton LifeLock Customers Compromised in Credential Stuffing Attack
Stay informed and protect yourself with our latest threat advisory. Learn about the recent Norton LifeLock data breach caused by a credential stuffing attack and find out how to safeguard your personal information and passwords. Follow our recommendations to stay secure online.
Critical Remote Code Execution Vulnerability in Sophos Firewall Devices
Enterprotect, a cybersecurity company, is issuing a threat advisory on a critical remote code execution (RCE) vulnerability found in the User Portal and Webadmin of Sophos Firewall devices. Thousands of devices are still vulnerable to attack and have yet to receive the hotfix.
Hackers Exploit Cacti Critical Bug to Install Malware and Open Reverse Shells
Enterprotect is issuing a threat advisory regarding a critical security issue in Cacti, a network device monitoring tool. Over 1,600 instances are vulnerable and hackers have already started to exploit it. Learn how to protect your network and limit internet-facing Cacti instances to only necessary hosts.
Malicious 'Lolip0p' PyPi Packages Install Info-Stealing Malware
Cybersecurity companies are warning developers to be extra careful when downloading packages from the Python Package Index (PyPI) after three malicious packages were found to contain code that drops info-stealing malware on users' systems.
Linux Kernel Vulnerability - A New Security Flaw Discovered in Linux 5.15 SMB3 Server
A new Linux Kernel Vulnerability has been disclosed by the Zero Day Initiative that could lead to code execution in the context of the kernel. Learn more about the threat, exposure, and recommendations from Enterprotect to protect your Linux systems. Upgrade your Linux kernel versions immediately to prevent potentially devastating attacks.
LastPass Security Incident Update
Stay informed on the latest LastPass security incident update. Learn about the unauthorized access to LastPass's cloud storage, the exposure and risk to customers and recommendations for precautionary measures. Protect your sensitive information and prevent cyberattacks with Enterprotect's comprehensive cybersecurity platform, Enterprotect 360.
Citrix ADC and Citrix Gateway Vulnerabilities Exploited in Targeted Attacks
Learn about the critical vulnerabilities in Citrix ADC and Gateway versions 12.1 and 13.0 before 13.0-58.32 and the recommended steps to mitigate the threat. This threat advisory includes information on the exposure or risk, why it is noteworthy and technical assistance.
Fortinet Zero-Day Vulnerability Actively Exploited in Attacks
Enterprotect warns of an actively exploited zero-day vulnerability in Fortinet's FortiOS operating system. The vulnerability, which allows attackers to remotely execute arbitrary code, has the potential to compromise the security of affected systems.
Malicious Open Broadcaster Software (OBS) Studio Being Delivered Through Paid Sponsored Links
Enterprotect is actively monitoring a new iteration of malware distribution through the use of sponsored links. Learn about the malicious version of Open Broadcaster Software (OBS) Studio and how it can compromise your device. Read our blog to learn how to protect your business and stay informed about the latest cybersecurity threats.